CVE-2019-13608 - Citrix StoreFront Server XML External Entity (XXE) Processing Vulnerability
Project:Citrix
Product:StoreFront Server
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
Citrix StoreFront Server XML External Entity (XXE) Processing Vulnerability
Description
Citrix StoreFront Server contains an XML External Entity (XXE) processing vulnerability that may allow an unauthenticated attacker to retrieve potentially sensitive information.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-13608